The Weekly Top 3 are the three most relevant news stories for the week that are related to phishing scams and activities reported in the media, security blogs and security magazines on the Internet. This week, we look at phishing activities related to Apple, British Gas and Talk Talk.
A new phishing scam targeting Apple product users has appeared recently. The phishing scam involved an e-mail that appears to be from an app known as "Co Pilot Premium HD". The phishing e-mail was in the format of an invoice and thanked its recipient for buying the app from Apple's App Store. The e-mail invoice listed the total of the purchase as USD $35.99, which tricks the victim into thinking that they overpaid for the app. The e-mail contained a malicious link that would allow the user to get a "refund" on their purchase. However, this link directed the victim to a web page where they were required to enter their credit card information. Click the link below to read more.
British Gas had a leak of sorts, but fortunately it was not a gas leak. Details surrounding a data breach at the company was communicated to the Information Commissioner's Office for further investigation. However, British Gas has confirmed that over 2000 of their customers were affected by the data breach, which compromised their customers' e-mail addresses and passwords. No bank account information had been leaked, but the company has advised their customers to be aware of phishing campaigns that would likely target them. Click the link below to read more.
Recently Talk Talk, the phone and broadband Internet service provider, had been the victim of a cyber attack that involved a Distributed Denial of Service attack (DDoS). This allowed hackers to access their servers and steal the personal data of their customers. This data included name, address, date of birth, e-mail address, telephone numbers and credit card information. Over 4 million customers were affected by this hack. Talk Talk has informed their customers to be aware of phishing schemes requesting that they change their password or update their account information. They have instructed customers to change the passwords for their online banking accounts and monitor them for unusual activity. Click the link below to read more.